Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Microsoft Lures Populate Half of Credential-Swiping Phishing Emails
#1
Quote:Almost half of phishing attacks in 2020 aimed to swipe credentials using Microsoft-related lures – from the Office 365 enterprise service lineup to its Teams collaboration platform.
 
According to a Tuesday report by Cofense, which analyzed millions of emails related to various attacks, 57 percent were phishing emails aiming to steal victim usernames and passwords. The remainder of malicious emails were utilized in business email compromise (BEC) attacks or for malware delivery.
 
Of those phishing emails, 45 percent were Microsoft-themed, said researchers: Cybercriminals are both relying on Microsoft-themed lures for their emails, as well as using ensuing phishing landing pages that either spoof or leverage legitimate Microsoft domains or services.

“With the number of organizations migrating to Office 365, targeting these credentials allows the threat actor to gain access to the organization as a legitimate user to go undetected,” researchers with Cofense told Threatpost. They added that they “highly recommend organizations enable [multi-factor authentication] along with their [Office 365] migration/ implementation.”


Read more: https://threatpost.com/microsoft-lures-c...ls/164207/
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Microsoft warns about this phishing attack that wants to read your emails Imran 0 811 01-25-2022 , 02:54 PM
Last Post: Imran
  10K Microsoft Email Users Hit in FedEx Phishing Attack Mohammad.Poorya 1 1,365 02-24-2021 , 05:16 PM
Last Post: tarekma7

Forum Jump:


Users browsing this thread: 1 Guest(s)